$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1094871149650640897/0/3132322e3230302e38362e302f32342d3234203d3e203338333634.roa File: 3132322e3230302e38362e302f32342d3234203d3e203338333634.roa (raw, json) Hash identifier: VmnV9qTln4R8CzW4bUbuqwVwAstv+OVLCVhmBzWsh3w= Subject key identifier: D1:44:1F:33:F0:C9:B2:70:9E:3A:CE:82:D5:97:E4:F3:12:69:07:9B Certificate issuer: /CN=29BAE90B795BA6BB50390EB31964E6F823BAB331 Certificate serial: 0FEE5097A747AC944A3E153DAD5DCED311AF6B7D Authority key identifier: 29:BA:E9:0B:79:5B:A6:BB:50:39:0E:B3:19:64:E6:F8:23:BA:B3:31 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/29BAE90B795BA6BB50390EB31964E6F823BAB331.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1094871149650640897/0/3132322e3230302e38362e302f32342d3234203d3e203338333634.roa Signing time: Wed 15 Apr 2026 02:50:22 +0000 ROA not before: Wed 15 Apr 2026 02:45:22 +0000 ROA not after: Wed 14 Apr 2027 02:50:22 +0000 asID: 38364 IP address blocks: 122.200.86.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1094871149650640897/0/29BAE90B795BA6BB50390EB31964E6F823BAB331.crl rsync://rpki-rps.cnnic.cn/repo/A1094871149650640897/0/29BAE90B795BA6BB50390EB31964E6F823BAB331.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/29BAE90B795BA6BB50390EB31964E6F823BAB331.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 13:38:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:ee:50:97:a7:47:ac:94:4a:3e:15:3d:ad:5d:ce:d3:11:af:6b:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29BAE90B795BA6BB50390EB31964E6F823BAB331 Validity Not Before: Apr 15 02:45:22 2026 GMT Not After : Apr 14 02:50:22 2027 GMT Subject: CN=D1441F33F0C9B2709E3ACE82D597E4F31269079B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:0e:f2:b9:4d:21:49:ec:19:ae:0b:97:d7:fe: e4:36:96:15:a2:b6:bf:15:4f:6a:98:4e:9b:91:bc: 7a:8b:bb:ef:fb:4a:37:8c:6e:a8:2f:72:b0:16:53: 0b:4a:f1:84:dc:2b:bb:07:61:80:92:db:1c:6f:a9: 27:22:97:14:b3:8a:41:3f:00:26:a6:86:0f:7d:4c: 30:6f:3b:e4:a7:c1:a1:33:f8:a9:dd:2c:55:67:b9: d1:ec:10:85:33:7b:63:39:e0:12:f4:0b:44:f9:05: 1b:4c:bb:6b:e5:f8:11:f9:a7:e9:8c:cb:20:89:d6: 57:4b:cf:ac:9d:c2:56:db:f5:bb:c6:b4:01:02:b8: f2:f1:6f:82:a0:b9:7c:ca:41:f9:8b:75:00:67:c4: de:c7:17:f9:ca:cb:cb:1c:61:ca:34:89:0a:13:7a: 22:76:e7:9f:fe:c9:2f:ca:c6:17:01:36:f2:17:f8: a5:2b:03:12:04:99:c8:f3:28:0a:0b:3b:18:29:fd: ee:a6:26:88:9f:d0:29:6c:2f:79:39:52:33:80:70: ad:68:80:2e:fe:39:fb:29:d9:fe:33:e8:07:77:ca: f2:9e:41:1f:5b:88:ed:e9:65:f8:ef:8b:78:b1:a2: ea:15:20:d3:92:bf:eb:50:11:10:05:1d:4b:c6:fa: d2:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:44:1F:33:F0:C9:B2:70:9E:3A:CE:82:D5:97:E4:F3:12:69:07:9B X509v3 Authority Key Identifier: keyid:29:BA:E9:0B:79:5B:A6:BB:50:39:0E:B3:19:64:E6:F8:23:BA:B3:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1094871149650640897/0/29BAE90B795BA6BB50390EB31964E6F823BAB331.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/29BAE90B795BA6BB50390EB31964E6F823BAB331.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1094871149650640897/0/3132322e3230302e38362e302f32342d3234203d3e203338333634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 122.200.86.0/24 Signature Algorithm: sha256WithRSAEncryption d7:c9:d7:ae:7a:2c:87:b5:30:14:41:f3:51:40:2c:74:22:64: d6:2f:fb:21:f6:09:04:2d:7f:9b:e0:aa:69:e8:50:fe:f1:17: 96:d5:8d:8a:65:d1:f5:07:8d:60:2c:69:2f:f5:9c:4d:57:65: 3a:52:75:ef:d7:d4:05:1f:90:15:06:e5:c3:c3:e6:01:87:38: d2:df:9e:df:47:75:1a:74:78:6a:d6:40:9b:c8:99:83:4f:c1: 76:88:81:95:11:24:af:09:8f:a8:4b:9a:cd:77:a4:c3:d1:03: a7:59:a3:97:ad:54:b4:53:2b:02:a3:be:f8:c1:07:66:88:84: c9:22:2f:c0:2f:36:39:94:d0:6d:8a:a1:05:03:97:67:19:0a: e7:ce:f4:f1:57:4d:c9:75:a2:a9:cb:ab:e8:42:60:c7:3f:03: 89:ab:a9:29:25:c6:e4:26:07:29:2e:55:07:d0:b0:89:26:f8: fa:e3:ed:e4:27:a6:6c:14:12:26:24:ad:75:ef:15:a2:3d:12: ea:56:1f:f5:f5:46:51:90:d8:78:64:ce:12:2d:af:36:9f:17: c0:32:86:b2:8f:e0:a0:c0:bf:3c:a9:f9:66:16:7c:0b:ba:32: 87:f6:19:a6:9d:d6:c5:f2:0c:74:02:0b:7e:31:22:e8:b2:69: 49:8a:0a:84 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUD+5Ql6dHrJRKPhU9rV3O0xGva30wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjlCQUU5MEI3OTVCQTZCQjUwMzkwRUIzMTk2NEU2Rjgy M0JBQjMzMTAeFw0yNjA0MTUwMjQ1MjJaFw0yNzA0MTQwMjUwMjJaMDMxMTAvBgNV BAMTKEQxNDQxRjMzRjBDOUIyNzA5RTNBQ0U4MkQ1OTdFNEYzMTI2OTA3OUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCVDvK5TSFJ7BmuC5fX/uQ2lhWi tr8VT2qYTpuRvHqLu+/7SjeMbqgvcrAWUwtK8YTcK7sHYYCS2xxvqScilxSzikE/ ACamhg99TDBvO+SnwaEz+KndLFVnudHsEIUze2M54BL0C0T5BRtMu2vl+BH5p+mM yyCJ1ldLz6ydwlbb9bvGtAECuPLxb4KguXzKQfmLdQBnxN7HF/nKy8scYco0iQoT eiJ255/+yS/KxhcBNvIX+KUrAxIEmcjzKAoLOxgp/e6mJoif0ClsL3k5UjOAcK1o gC7+Ofsp2f4z6Ad3yvKeQR9biO3pZfjvi3ixouoVINOSv+tQERAFHUvG+tIDAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQU0UQfM/DJsnCeOs6C1Zfk8xJpB5swHwYDVR0j BBgwFoAUKbrpC3lbprtQOQ6zGWTm+CO6szEwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NDg3MTE0OTY1MDY0MDg5Ny8wLzI5QkFFOTBCNzk1QkE2QkI1MDM5MEVCMzE5NjRF NkY4MjNCQUIzMzEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMjlCQUU5MEI3OTVCQTZCQjUwMzkwRUIzMTk2NEU2RjgyM0JBQjMzMS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5NDg3MTE0OTY1MDY0MDg5Ny8wLzMxMzIzMjJlMzIz MDMwMmUzODM2MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzMzODMzMzYzNC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAHrIVjANBgkqhkiG9w0BAQsFAAOCAQEA18nXrnosh7UwFEHzUUAsdCJk 1i/7IfYJBC1/m+CqaehQ/vEXltWNimXR9QeNYCxpL/WcTVdlOlJ179fUBR+QFQbl w8PmAYc40t+e30d1GnR4atZAm8iZg0/BdoiBlREkrwmPqEuazXekw9EDp1mjl61U tFMrAqO++MEHZoiEySIvwC82OZTQbYqhBQOXZxkK58708VdNyXWiqcur6EJgxz8D iaupKSXG5CYHKS5VB9CwiSb4+uPt5CembBQSJiStde8Voj0S6lYf9fVGUZDYeGTO Ei2vNp8XwDKGso/goMC/PKn5ZhZ8C7oyh/YZpp3WxfIMdAILfjEi6LJpSYoKhA== -----END CERTIFICATE-----Generated at Fri Apr 17 19:54:45 2026 by rpki-client